Lucene search
+L

14 matches found

OSV
OSV
added 2024/10/16 7:15 a.m.4 views

CVE-2023-7290

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the checkforverifiedprofiles function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with...

4.3CVSS5.8AI score0.00242EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/10/16 7:15 a.m.6 views

CVE-2023-7289

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized API key update due to a missing capability check on the paytiumswsaveapikeys function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with subscriber-level...

5.4CVSS5.4AI score0.00275EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/10/16 7:15 a.m.3 views

CVE-2023-7290

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the checkforverifiedprofiles function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with...

4.3CVSS5.4AI score0.00242EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/10/16 7:15 a.m.6 views

CVE-2023-7287

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized subscription cancellation due to a missing capability check on the ptcancelsubscription function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with...

5.4CVSS5.4AI score0.00304EPSS
Exploits0References3
OSV
OSV
added 2024/10/16 7:15 a.m.7 views

CVE-2023-7287

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized subscription cancellation due to a missing capability check on the ptcancelsubscription function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with...

5.4CVSS5.8AI score0.00304EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/16 12:0 a.m.7 views

WordPress plugin Paytium: Mollie payment forms & donations 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in the WordPress plugin...

4.3CVSS6.5AI score0.00272EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/16 12:0 a.m.4 views

WordPress plugin Paytium: Mollie payment forms & donations 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. A security vulnerability exists in the WordPress plugin...

5.4CVSS6.4AI score0.00272EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2024/10/15 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-7293

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the checkmollieaccountdetails function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with...

4.3CVSS5.8AI score0.00242EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2024/10/15 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-7288

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the updateprofilepreference function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with...

5.4CVSS5.8AI score0.00272EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/15 12:0 a.m.10 views

PT-2024-15268 · WordPress · The Paytium: Mollie Payment Forms & Donations

Name of the Vulnerable Software and Affected Versions: The Paytium: Mollie payment forms & donations plugin for WordPress versions up to, and including, 4.3.7 Description: The issue is related to unauthorized subscription cancellation due to a missing capability check on the pt cancel subscriptio...

5.4CVSS6.9AI score0.00304EPSS
Exploits0References6
VulnCheck KEV
VulnCheck KEV
added 2024/10/15 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-7291

The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the createmollieaccount function in versions up to, and including, 4.3.7. This makes it possible for authenticated attackers with...

8.1CVSS5.8AI score0.00354EPSS
Exploits0References1
OSV
OSV
added 2022/12/26 1:15 p.m.5 views

CVE-2022-4042

The Paytium: Mollie payment forms & donations WordPress plugin before 4.3.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in...

4.8CVSS5.8AI score0.0047EPSS
Exploits2References1
NVD
NVD
added 2022/12/26 1:15 p.m.20 views

CVE-2022-4042

The Paytium: Mollie payment forms & donations WordPress plugin before 4.3.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in...

4.8CVSS0.0047EPSS
Exploits2References1
Prion
Prion
added 2022/12/26 1:15 p.m.20 views

Cross site scripting

The Paytium: Mollie payment forms & donations WordPress plugin before 4.3.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in...

4.3CVSS4.7AI score0.0047EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder